What is Cross-Site Scripting (XSS)? Cross-site scripting is a type of attack where a vulnerability in web applications is exploited and malicious script is injected… 3 minutes
Why ransomware gangs want you to keep using that GPON router A vulnerability found in 2018 is ranked #6 on the list of most attacked vulnerabilities. 2 minutes
Hybrid cloud environments are not safe from ransomware A ransomware affiliate has been found compromising hybrid cloud environments. 3 minutes
Windows MSHTML vulnerability actively exploited CISA has added another MSHTML vulnerability rooted in Internet Explorer to its known exploited vulnerabilities catalog 1 minute
Update now! Critical CVSS 10 vulnerability in Ivanti EPM Ivanti has released a fix for CVE-2024-29847, a deserialization of untrusted data flaw that allows remote code execution in its… 2 minutes
Update now! Four zero-days fixed in September Patch Tuesday Microsoft’s September Patch Tuesday covers 79 Microsoft CVEs and includes four actively exploited zero-days. 2 minutes
Ransomware gangs target SonicWall vulnerability SonicWall is urging customers affected by CVE-2024-40766 to "please apply the patch as soon as possible." 2 minutes
Patch now! Zero-day used to target ISPs and MSPs A patch is now available for a high severity vulnerability in Versa Director that can be used to compromise ISPs,… 2 minutes
What is a path traversal vulnerability? What are path or directory traversal vulnerabilities, and how can you protect against them? 3 minutes
Patch, but don’t be scared! OpenSSH bug is back from the dead A vulnerability from 2006 has come back to life to haunt installations of the widely-used secure shell. 2 minutes